[Git][security-tracker-team/security-tracker][master] Clarified state of CVE-2019-1010142 with MITRE

Salvatore Bonaccorso carnil at debian.org
Sun Jul 21 08:06:15 BST 2019 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
a1c4c7f3 by Salvatore Bonaccorso at 2019-07-21T07:04:57Z
Clarified state of CVE-2019-1010142 with MITRE

Remove notes from CVE-2019-1010262 as this is a reservation duplicate of
CVE-2019-1010142 as confirmed.

Next MITRE feed updates will remove the CVE-2019-1010262 entries as the
rejection was already confirmed.

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -11971,9 +11971,8 @@ CVE-2019-1010263 (Perl Crypt::JWT prior to 0.023 is affected by: Incorrect Acces
 	- libcrypt-jwt-perl <not-affected> (Fixed with the initial upload to Debian)
 	NOTE: https://github.com/DCIT/perl-Crypt-JWT/commit/b98a59b42ded9f9e51b2560410106207c2152d6c
 	NOTE: https://www.openwall.com/lists/oss-security/2018/09/07/1
-CVE-2019-1010262 (scapy 2.4.0 and earlier is affected by: Denial of Services. The impact ...)
-	- scapy 2.4.2-1
-	NOTE: https://github.com/secdev/scapy/commit/0d7ae2b039f650a40e511d09eb961c782da025d9 (v2.4.1)
+CVE-2019-1010262
+	REJECTED
 CVE-2019-1010261 (Gitea 1.7.0 and earlier is affected by: Cross Site Scripting (XSS). Th ...)
 	- gitea <removed>
 CVE-2019-1010260 (Using ktlint to download and execute custom rulesets can result in arb ...)
@@ -12219,6 +12218,8 @@ CVE-2019-1010143
 	RESERVED
 CVE-2019-1010142 (scapy 2.4.0 is affected by: Denial of Service. The impact is: infinite ...)
 	- scapy 2.4.2-1
+	NOTE: https://github.com/secdev/scapy/pull/1409
+	NOTE: https://github.com/secdev/scapy/commit/0d7ae2b039f650a40e511d09eb961c782da025d9 (v2.4.1)
 	NOTE: https://github.com/secdev/scapy/pull/1409/files#diff-441eff981e466959968111fc6314fe93L1058
 CVE-2019-1010141
 	RESERVED



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/a1c4c7f311509453899b376e9d698e47d478a118

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/a1c4c7f311509453899b376e9d698e47d478a118
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190721/f97cf9dd/attachment.html>

More information about the debian-security-tracker-commits mailing list